Home -> Resources -> SCADA/ICS Vulnerability Reference -> Optima APIFTP Server

Optima APIFTP Server Vulnerabilities

November 28, 2011

Security researcher Luigi Auriemma has publically disclosed two vulnerabilities in Optima PLC, which can be exploited by malicious people to cause a DoS (Denial of Service).

1) An error within the handling of certain packets in the APIFTP Server (APIFTPServer.exe) can be exploited to repeatedly trigger a NULL pointer dereference leading to a stack overflow by sending specially packets to port 10260/TCP.

2) An error within the handling of certain packets in the APIFTP Server (APIFTPServer.exe) can be exploited to cause an infinite loop by sending specially crafted packets to port 10260/TCP.

Platforms Affected:
-  Optima APIFTP Server 1.5.2.13
-  Optima APIFTP Server 1.6.1.110
-  Optima PLC 2.13.3.5

Other versions may be affected.

ICS-CERT Advisories / Alerts

ICS-ALERT-11-332-03

Vendor Website (include Patches / Hotfixes)

Optima Product Home Page
Optima PLC Trial Software Download
Optima View Trial Software Download
Optima Tracks Trial Software Download
Optim'Alarm Trial Software Download

Exploit Proof-of-Concept

Exploit-DB ID 18112
Security Focus (ID 50658)

Common Vulnerability & Exposure (CVE) References

Not available at this time.

Additional Information

Disclosure (Luigi Auriemma)
Exploit-DB ID 18112
IBM Internet Security Systems #69553
Open-Source Vulnerability Database #77101
Open-Source Vulnerability Database #77102
Secunia Advisory #46830
Secunia Vulnerability Report and Statistics on Optima PLC 2.x
Security Focus Vulnerability Info and Exploit Bugtraq ID 50658

Hike in Public Release of SCADA Holes (ISSSource)